A decentralised biometric authentication and entitlement system.
Private by design.
Offline by default.
A new trust layer for doors, devices, and on-site services.Access in the palm of your hand
Prototype funded by Innovate UK
Why PalmVault, why now
This is a new category in authentication: privacy-first access and payments at the edge. Quicker on site. Less fraud. Lower liability. More trust.Guests and members want seamless entry without handing over biometrics or unnecessary personal data. Cards fail or get lost. People do not want their passport scan, biometric images, or driving licence photos stored in a venue’s systems. Data breaches, scraping and hacking are everyday risks.Operators carry rising risk and cost. When cards fail or go missing, every incident becomes a reset, reprint, or room recode, creating queues and support load. Cards can be cloned or shared. PIN resets and keycard printing waste time and budget. Holding identity data and biometrics increases GDPR liability and slows audits.PalmVault is a decentralised biometric entitlement layer. People enrol once on their own device using face or fingerprint. The template stays on the device. At the door or point of service, presence is proven offline with a cryptographic challenge and a local decision. No central biometric database. No personal profiles to monetise. Data is minimised by default.On-device only.
Offline by default.
Tokenised entitlements.
How it works
Enrol once
Register your biometric (face/fingerprint) locally on your device.
Prove presence
Authenticate offline with cryptographic proof.
Enforce entitlements
Access controls validated at the edge.
Access with entitlements.
Payments as well.
PalmVault goes beyond entry control.
The same privacy-first architecture that authenticates users at the door
can validate purchases, memberships, and time-based access, without sharing personal data.
Who it’s for
PalmVault fits places where trust, privacy, and uptime matter.
Enrol once on your device.
Prove presence offline.
Enforce entitlements at the edge.
Hotels & Hospitality
Guests enrol once on their device.
Use case: unlock rooms and lifts; access spa, gym, or lounge; charge to room or on-site wallet.
Operator benefit: no cards to issue; far fewer failures/reprints; faster service; revocable entitlements for staff and guests.
Fitness & studios
Members enrol once on their device.
Use case: door entry, class check-ins, lockers; guest passes/drop-ins; verify memberships or class credits offline.
Operator benefit: no PIN resets; entitlements update instantly; audit without holding biometrics.
Co-working & offices
Staff and visitors enrol once on their device.
Use case: zone-based access, hot desks, meeting rooms; temporary visitor passes; contractor time windows.
Operator benefit: edge-validated permissions with local logs; no central biometric database.
Residential & multi-unit
Residents enrol once on their device.
Use case: doors, garages, parcels, amenities; delegate temporary access to guests or trades.
Operator benefit: revocable tokens; privacy by design for residents.
Events & venues
Attendees enrol once pre-event or on arrival.
Use case: ticket validation at gates, age-restricted areas, VIP zones; offline concessions; secure ticket delegation/transfer.
Operator benefit: fast throughput; fraud reduction; no personal data shared with vendors.
And more
Healthcare (staff zones, meds cabinets)
Education & campuses
Transport hubs & depots
Retail & point-of-sale
Logistics & warehouses
Construction sites
Data centres & labs
Public sector & social care
And more - ask about your environment